Vulnerabilities > Improper Certificate Validation
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-01-19 | CVE-2023-23690 | Improper Certificate Validation vulnerability in Dell Cloud Mobility for Dell EMC Storage 1.3.0/1.3.1 Cloud Mobility for Dell EMC Storage, versions 1.3.0.X and below contains an Improper Check for Certificate Revocation vulnerability. | 7.0 |
2023-01-06 | CVE-2022-42979 | Improper Certificate Validation vulnerability in Rydesharing Ryde 5.8.43 Information disclosure due to an insecure hostname validation in the RYDE application 5.8.43 for Android and iOS allows attackers to take over an account via a deep link. | 8.8 |
2022-12-25 | CVE-2022-45197 | Improper Certificate Validation vulnerability in Slixmpp Project Slixmpp Slixmpp before 1.8.3 lacks SSL Certificate hostname validation in XMLStream, allowing an attacker to pose as any server in the eyes of Slixmpp. | 7.5 |
2022-12-22 | CVE-2022-1197 | Improper Certificate Validation vulnerability in Mozilla Thunderbird When importing a revoked key that specified key compromise as the revocation reason, Thunderbird did not update the existing copy of the key that was not yet revoked, and the existing key was kept as non-revoked. | 5.4 |
2022-12-22 | CVE-2022-1834 | Improper Certificate Validation vulnerability in Mozilla Thunderbird When displaying the sender of an email, and the sender name contained the Braille Pattern Blank space character multiple times, Thunderbird would have displayed all the spaces. | 6.5 |
2022-12-22 | CVE-2022-22747 | Improper Certificate Validation vulnerability in Mozilla Firefox After accepting an untrusted certificate, handling an empty pkcs7 sequence as part of the certificate data could have lead to a crash. | 6.5 |
2022-12-22 | CVE-2022-34469 | Improper Certificate Validation vulnerability in Mozilla Firefox When a TLS Certificate error occurs on a domain protected by the HSTS header, the browser should not allow the user to bypass the certificate error. | 8.1 |
2022-12-22 | CVE-2022-45419 | Improper Certificate Validation vulnerability in Mozilla Firefox If the user added a security exception for an invalid TLS certificate, opened an ongoing TLS connection with a server that used that certificate, and then deleted the exception, Firefox would have kept the connection alive, making it seem like the certificate was still trusted. | 6.5 |
2022-12-08 | CVE-2022-46153 | Improper Certificate Validation vulnerability in Traefik Traefik is an open source HTTP reverse proxy and load balancer. | 6.5 |
2022-11-27 | CVE-2022-43705 | Improper Certificate Validation vulnerability in Botan Project Botan In Botan before 2.19.3, it is possible to forge OCSP responses due to a certificate verification error. | 9.1 |